About the Splunk Add-on for CyberArk EPM
|Vendor Products||CyberArk Endpoint Privilege Manager v11.6, v21.10|
The Splunk Add-on for CyberArk EPM allows a Splunk software administrator to pull aggregated events of Application Events, Policy Audit, and Threat Detection categories using the cloud administration APIs of CyberArk EPM. Splunk Add-on for CyberArk EPM can also collect logs related to policies, computers, and computer groups.
This TA supports SaaS version of CyberArk EPM and not the on-prem version.
This add-on is only Python3 compatible.
Download the Splunk Add-on for CyberArk EPM from Splunkbase at http://splunkbase.splunk.com/app/5160.
This documentation applies to the following versions of Splunk® Supported Add-ons: released